Microsoft Cloud Security Consultant - Remote US Only
Are you ready to elevate your cybersecurity career to new heights while enjoying the flexibility of remote work?
We are seeking an experienced Cloud Security Consultant with a specialized focus on Microsoft Azure, Microsoft 365 (M365), Entra ID, Sentinel, and the Defender suite of products. This also includes a comprehensive knowledge of the full suite of Microsoft Security solutions, including Cloud Security and Data Loss Prevention (DLP). The ideal candidate will also bring extensive experience in AWS Security, with the capability to assess, remediate, and provide expert consulting on all security aspects of both cloud environments. This role requires someone with hands-on skills in cloud security architecture, risk management, and incident response and business email compromise, supported by relevant industry certifications and vendor-specific qualifications. An understanding of exploitation of misconfigurations within the cloud platform will also be important.
In this role, you will work closely with clients to assess their cloud security posture, recommend and implement improvements, and ensure compliance with industry standards. Your deep understanding of Azure, M365, Entra ID, AWS, and other Microsoft security tools will allow you to provide holistic security guidance and solutions that safeguard critical data, prevent unauthorized access, and optimize cloud security operations. So, if you're ready to make your mark in the ever-exciting world of cybersecurity, if you're driven to push boundaries and pioneer novel solutions, and if you're seeking a role that transcends the ordinary, then we invite you to join us on this exhilarating journey at Blue Mantis.
Key Responsibilities
- Advanced Cloud Security Assessment: Conduct in-depth security assessments across Azure, M365, Entra ID, and AWS environments, utilizing advanced security tools to evaluate cloud configurations, data protection strategies, and access controls. Analyze and mitigate risks by identifying misconfigurations, data exposures, and security weaknesses specific to cloud infrastructure.
- Cloud Engineering and Architecture Design: Design and implement secure cloud architectures tailored to clients’ specific business needs across Azure, M365, and AWS environments. Develop and optimize infrastructure to ensure security, scalability, and resilience, integrating security controls throughout the architecture to protect data and minimize attack surfaces.
- Risk Detection and Vulnerability Management: Detect and remediate vulnerabilities within cloud security architectures, such as Identity and Access Management (IAM), MFA, M365 weaknesses, unsecured endpoints, and data loss risks. Utilize both manual techniques and automation to uncover hidden risks and enhance data protection of client environments.
- Data Classification, Management, and DLP Implementation: Assess, Design, and implement data classification and Data Loss Prevention (DLP) strategies across Microsoft, AWS, and on-premises environments to protect sensitive data and ensure compliance. Assist clients in categorizing and managing data according to sensitivity, regulatory requirements, and business needs, applying DLP policies to prevent unauthorized access and data leaks.
- Strategic Threat Simulation: Develop and execute cloud-focused threat simulations to evaluate clients’ defenses against advanced cyberattacks. Utilize Microsoft and AWS security tools, as well as OSINT techniques, to simulate real-world cyber threats and identify potential attack vectors within cloud and hybrid environments.
- Detailed Security Reporting: Prepare comprehensive reports detailing identified vulnerabilities, potential exploitation methods, and prioritized remediation recommendations. Clearly communicate risks and mitigation strategies related to Azure, M365, Entra ID, and AWS to support informed decision-making by clients and stakeholders.
- Technical Insight Communication: Translate complex cloud security findings into actionable insights. Document and present advanced cloud-specific vulnerabilities and their implications, equipping clients with the knowledge and providing a roadmap to strengthen their security posture to align with regulatory requirements.
- Remediation Guidance and Implementation: Provide expert guidance to clients, turning security recommendations into actionable plans. Support the implementation of security best practices, identity management, access controls, and DLP strategies within Microsoft and AWS environments to enhance overall security.
- Continuous Skill Development and Certifications: Stay updated on certifications, emerging cloud security threats, vulnerabilities, and best practices, with a particular focus on Zero Trust architecture. Deepen knowledge of Microsoft and AWS security solutions to deliver cutting-edge security strategies to clients.
Skills, Knowledge & Expertise
- 3-5 years of experience in cloud security, with a focus on Microsoft Azure, M365, and AWS security.
- Deep understanding of Microsoft Entra ID, Azure AD, Microsoft Defender Suite, Microsoft Sentinel, and DLP strategies.
- Strong knowledge of AWS security services, including IAM, Security Hub, GuardDuty, and VPC security configurations.
- Experience conducting security assessments, risk analysis, and remediation in M365, Azure, and AWS cloud environments.
- Relevant certifications such as Microsoft AZ-500, MS-500, SC-100, SC-200, SC-400, and industry standards like CISSP, or CCSP is a plus.
- Bachelor’s degree in Computer Science, Information Security or a related field.
- Uphold ethical standards, ensuring engagements and client interactions are conducted with the utmost integrity. Maintain strict confidentiality, showcasing the company's dedication to ethical excellence.
- This role delves into the heart of technical mastery, harnessing tools, and techniques to uncover vulnerabilities that may elude casual observers. Your skills will not only enhance our clients' defenses but will also contribute to the advancement of clients cybersecurity programs.